Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/93b300-84d9-44c1-8b61-558c846b2fa7/1/I9IIPwm0T9Xjyf3QPKYPk73bM6c.roa
File: I9IIPwm0T9Xjyf3QPKYPk73bM6c.roa (raw, json)
Hash identifier: d9tjKuVP8WxsOzrQtow+Tvi5NehKEWxxxH8F7V+5dHc=
Subject key identifier: 23:D2:08:3F:09:B4:4F:D5:E3:C9:FD:D0:3C:A6:0F:93:BD:DB:33:A7
Certificate issuer: /CN=86e23ffc789512508d90aa3d3520345556b2080c
Certificate serial: 018CC34934E37FFD74EBC1E2382192A2AAA3
Authority key identifier: 86:E2:3F:FC:78:95:12:50:8D:90:AA:3D:35:20:34:55:56:B2:08:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/huI__HiVElCNkKo9NSA0VVayCAw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/93b300-84d9-44c1-8b61-558c846b2fa7/1/I9IIPwm0T9Xjyf3QPKYPk73bM6c.roa
Signing time: Mon 01 Jan 2024 04:30:03 +0000
ROA not before: Mon 01 Jan 2024 04:30:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39601
IP address blocks: 194.50.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:49:34:e3:7f:fd:74:eb:c1:e2:38:21:92:a2:aa:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86e23ffc789512508d90aa3d3520345556b2080c
Validity
Not Before: Jan 1 04:30:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=23d2083f09b44fd5e3c9fdd03ca60f93bddb33a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:40:77:fa:4d:80:93:46:eb:6e:da:32:94:a2:
35:ee:19:ee:34:4f:6a:fa:86:5e:04:c9:bc:9f:54:
37:ce:70:03:c6:c9:ae:94:78:a3:f9:8d:86:7e:50:
53:be:5d:c3:86:1c:ff:07:be:37:f5:c6:f7:fc:2c:
25:a5:b0:36:7a:80:f9:e1:76:a7:34:ab:c5:d6:3f:
7a:9c:6f:59:75:36:d1:d2:fb:b0:de:31:0c:7b:51:
3e:a7:52:fa:31:66:91:4f:87:a7:4f:ef:cc:a7:71:
55:e7:3f:db:d8:f7:96:76:a0:c2:d0:f2:0f:2f:82:
bb:d5:b0:1e:b3:56:d5:02:a9:ae:dc:1a:07:da:91:
59:19:b7:f8:e7:cf:0b:85:a1:67:56:a6:1c:fc:2b:
67:d2:69:14:04:7f:48:b7:0b:19:01:07:5e:a2:f4:
25:e6:bf:75:87:e0:c9:c7:46:62:04:25:ca:63:bc:
97:cd:f5:2c:ef:c5:7a:7b:b4:f3:2b:f9:b2:8c:fc:
6f:37:37:63:90:10:b9:06:d1:e9:bd:12:53:48:93:
b5:93:82:ae:a7:79:0d:0a:41:d3:ec:fd:3b:5c:eb:
e5:35:77:95:a2:d5:98:43:52:d3:13:f0:95:c9:1e:
4f:65:41:2b:0a:d5:b6:77:c1:4f:76:72:fe:7b:de:
24:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:D2:08:3F:09:B4:4F:D5:E3:C9:FD:D0:3C:A6:0F:93:BD:DB:33:A7
X509v3 Authority Key Identifier:
keyid:86:E2:3F:FC:78:95:12:50:8D:90:AA:3D:35:20:34:55:56:B2:08:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/huI__HiVElCNkKo9NSA0VVayCAw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/93b300-84d9-44c1-8b61-558c846b2fa7/1/I9IIPwm0T9Xjyf3QPKYPk73bM6c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/93b300-84d9-44c1-8b61-558c846b2fa7/1/huI__HiVElCNkKo9NSA0VVayCAw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.76.0/24
Signature Algorithm: sha256WithRSAEncryption
46:de:2c:c8:b0:d9:f7:e5:ad:0e:64:b8:04:e3:7c:4e:88:4a:
23:2b:a2:a0:78:db:bd:78:ac:01:d6:cd:98:df:11:e4:1e:e8:
5e:1c:74:23:ac:65:15:5e:fb:0c:79:bd:90:47:50:8e:55:9e:
fa:d3:79:d2:07:24:ba:21:18:ef:87:51:fd:3a:7f:32:81:4c:
83:8d:37:0d:45:ef:13:0c:81:55:e3:cf:c5:3c:07:25:bb:42:
e2:db:37:a3:62:b9:74:a0:cf:01:e2:9e:05:dd:96:65:4d:f4:
b5:3e:4b:45:8e:9e:29:54:25:f3:1b:2e:42:87:32:c0:67:4b:
2d:25:6d:5b:63:07:ba:74:75:ce:58:f8:9f:fa:3f:67:f4:83:
97:eb:b5:d5:2b:41:6c:08:c4:53:fe:96:e9:48:1e:c9:d6:12:
f2:0d:05:e0:12:b6:03:ae:a3:53:39:a6:91:83:ed:fa:4c:95:
08:d2:6c:7d:57:d4:f1:ad:52:61:a9:41:0d:24:fa:ce:66:d3:
05:e9:b4:10:48:97:7f:d5:d4:af:2d:ca:32:34:4f:02:3b:8c:
7f:27:3d:1e:cf:4e:46:c3:27:20:ad:4f:1e:f2:b5:c4:98:51:
69:7d:10:65:15:5a:85:73:11:32:ee:ff:f2:8a:28:d8:fc:51:
7e:61:ed:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 28 17:46:25 2024 by rpki-client on console.sobornost.net